scanoss 0.7.5 → 0.7.8

package/build/main/src/sdk/Dependencies/LocalDependency/LocalDependency.d.ts

@@ -0,0 +1,8 @@
+import { ILocalDependencies } from "./DependencyTypes";
+export declare class LocalDependencies {
+    private parserMap;
+    constructor();
+    search(files: Array<string>): Promise<ILocalDependencies>;
+    private getParserFunc;
+    stringMatchWithWildcard(text: string, pattern: string): boolean;
+}

package/build/main/src/sdk/Dependencies/LocalDependency/LocalDependency.js

@@ -0,0 +1,102 @@
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.LocalDependencies = void 0;
+const path_1 = __importDefault(require("path"));
+const fs_1 = __importDefault(require("fs"));
+const pyParser_1 = require("./parsers/pyParser");
+const mavenParser_1 = require("./parsers/mavenParser");
+const npmParser_1 = require("./parsers/npmParser");
+const rubyParser_1 = require("./parsers/rubyParser");
+const golangParser_1 = require("./parsers/golangParser");
+const nugetParser_1 = require("./parsers/nugetParser");
+const buildGradleParser_1 = require("./parsers/buildGradleParser");
+class LocalDependencies {
+    constructor() {
+        /*
+        This is a hash map that connect a filename with it's own parser function
+        Any parser function must return a ILocalDependencies object (See DependencyTypes.ts)
+        */
+        this.parserMap = {
+            'requirements.txt': pyParser_1.requirementsParser,
+            'pom.xml': mavenParser_1.pomParser,
+            'package.json': npmParser_1.packageParser,
+            'package-lock.json': npmParser_1.packagelockParser,
+            'Gemfile': rubyParser_1.gemfileParser,
+            'Gemfile.lock': rubyParser_1.gemfilelockParser,
+            'go.mod': golangParser_1.goModParser,
+            'go.sum': golangParser_1.goSumParser,
+            'yarn.lock': npmParser_1.yarnLockParser,
+            '*.csproj': nugetParser_1.csprojParser,
+            'packages.config': nugetParser_1.packagesConfigParser,
+            'build.gradle': buildGradleParser_1.buildGradleParser,
+        };
+    }
+    async search(files) {
+        let results = { files: [] };
+        for (const filePath of files) {
+            const fileName = path_1.default.basename(filePath);
+            const parser = this.getParserFunc(fileName);
+            if (parser != null) {
+                try {
+                    const fileContent = await fs_1.default.promises.readFile(filePath, 'utf8');
+                    const dependency = await parser(fileContent, filePath);
+                    if (dependency.purls.length != 0)
+                        results.files.push(dependency);
+                }
+                catch (e) {
+                    console.error(e);
+                    continue;
+                }
+            }
+        }
+        return results;
+    }
+    getParserFunc(filename) {
+        //Check for an exact match
+        const func = this.parserMap[filename];
+        if (func)
+            return func;
+        //Check for a wildcard string match
+        const filesPatterns = Object.keys(this.parserMap).filter((item) => item.includes("*"));
+        for (const pattern of filesPatterns) {
+            if (this.stringMatchWithWildcard(filename, pattern))
+                return this.parserMap[pattern];
+        }
+        return null;
+    }
+    // The logic for the string wildcard match algorithm was an imitation from here:
+    // https://www.codeproject.com/Articles/5163931/Fast-String-Matching-with-Wildcards-Globs-and-Giti
+    stringMatchWithWildcard(text, pattern) {
+        let iText = 0;
+        let iPattern = 0;
+        let iTextBackup = null;
+        let iPatternBackup = null;
+        while (text[iText]) {
+            if (pattern[iPattern] == '*') {
+                // new star-loop: backup positions in pattern and text
+                iTextBackup = iText;
+                iPatternBackup = ++iPattern;
+            }
+            else if (text[iText] == pattern[iPattern]) {
+                iText++;
+                iPattern++;
+            }
+            else {
+                //If there are no star, we fail to match
+                if (iPatternBackup == null)
+                    return false;
+                iText = ++iTextBackup;
+                iPattern = iPatternBackup;
+            }
+        }
+        //Ignore trailling stars
+        while (pattern[iPattern] == '*')
+            iPatternBackup++;
+        //There is a match when the pattern was walked all the way throught
+        return iPattern >= pattern.length ? true : false;
+    }
+}
+exports.LocalDependencies = LocalDependencies;
+//# sourceMappingURL=data:application/json;base64,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

package/build/main/src/sdk/Dependencies/LocalDependency/parsers/buildGradleParser.d.ts

@@ -0,0 +1,2 @@
+import { ILocalDependency } from '../DependencyTypes';
+export declare function buildGradleParser(fileContent: string, filePath: string): Promise<ILocalDependency>;

package/build/main/src/sdk/Dependencies/LocalDependency/parsers/buildGradleParser.js

@@ -0,0 +1,95 @@
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.buildGradleParser = void 0;
+const path_1 = __importDefault(require("path"));
+const packageurl_js_1 = require("packageurl-js");
+const MANIFEST_FILE = 'build.gradle';
+const depBlockRex = /dependencies\s*{\s*(?<dependencies>(.|\n)*?)}/gm;
+var GRADLE_STATES;
+(function (GRADLE_STATES) {
+    GRADLE_STATES[GRADLE_STATES["WALKING"] = 0] = "WALKING";
+    GRADLE_STATES[GRADLE_STATES["SINGLELINE_DEPENDENCY"] = 1] = "SINGLELINE_DEPENDENCY";
+    GRADLE_STATES[GRADLE_STATES["MULTILINE_DEPENDENCY"] = 2] = "MULTILINE_DEPENDENCY";
+})(GRADLE_STATES || (GRADLE_STATES = {}));
+async function buildGradleParser(fileContent, filePath) {
+    var _a;
+    // If the file is not a manifest file, return an empty results
+    const results = { file: filePath, purls: [] };
+    if (path_1.default.basename(filePath) != MANIFEST_FILE)
+        return results;
+    //For each dependency block, generate purls
+    let gradle;
+    while ((gradle = depBlockRex.exec(fileContent)) !== null) {
+        let depBlock = (_a = gradle === null || gradle === void 0 ? void 0 : gradle.groups) === null || _a === void 0 ? void 0 : _a.dependencies;
+        let current_config_name = ""; //Config name is placed in the scope
+        let lines = depBlock.split(/\r?\n/);
+        for (let i = 0; i < lines.length; i++) {
+            let line = lines[i];
+            if (line.includes("//"))
+                line = line.replace(/\/\/.*$/gm, "");
+            line = line.trim();
+            if (line == '')
+                continue;
+            current_config_name = getConfigNameFromLine(line);
+            //Multiline dependency
+            if (current_config_name && line.includes("(")) {
+                while (i < lines.length && !lines[i].includes(")")) {
+                    const componentData = createPurlNameFromLine(lines[i]);
+                    if (componentData != null) {
+                        results.purls.push({
+                            purl: componentData.purlName,
+                            requirement: componentData.version,
+                            scope: current_config_name
+                        });
+                    }
+                    i++;
+                }
+                current_config_name = '';
+            }
+            else { //Single line dependency
+                const componentData = createPurlNameFromLine(line);
+                if (componentData == null) {
+                    current_config_name = '';
+                    continue;
+                }
+                results.purls.push({ purl: componentData.purlName, requirement: componentData.version, scope: current_config_name });
+            }
+        }
+    }
+    return Promise.resolve(results);
+}
+exports.buildGradleParser = buildGradleParser;
+function getConfigNameFromLine(line) {
+    let configName = "";
+    const dep = line.split(/\s/);
+    if (dep.length)
+        configName = dep[0].replace("(", "").trim();
+    return configName;
+}
+function createPurlNameFromLine(line) {
+    var _a, _b;
+    let namespace = undefined;
+    let name = undefined;
+    let version = undefined;
+    //Enters when line = implementation 'org.scala-lang:scala-library:2.11.12'
+    let dep = line.match(/(?<namespace>[\w\.\-]+):(?<name>[\w\.\-]+):(?<version>[\d\.]+)/);
+    if (dep === null || dep === void 0 ? void 0 : dep.length) {
+        namespace = dep.groups.namespace;
+        name = dep.groups.name;
+        version = dep.groups.version;
+    }
+    else if (line.includes("group") && line.includes("name") && line.includes("version")) {
+        version = line.match(/version:\s+['"](?<version>[\w\.\-\d]+)['"]/).groups.version;
+        name = (_a = line.match(/name:\s+['"](?<name>[\w\.\-\d]+)['"]/).groups) === null || _a === void 0 ? void 0 : _a.name;
+        namespace = (_b = line.match(/group:\s+['"](?<group>[\w\.\-\d]+)['"]/).groups) === null || _b === void 0 ? void 0 : _b.group;
+    }
+    let purlName = "";
+    if (name && namespace) {
+        const purlObj = new packageurl_js_1.PackageURL('maven', namespace, name, undefined, undefined, undefined);
+        return { purlName: purlObj.toString(), version };
+    }
+    return null;
+}
+//# sourceMappingURL=data:application/json;base64,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

package/build/main/src/sdk/Dependencies/LocalDependency/parsers/golangParser.d.ts

@@ -0,0 +1,3 @@
+import { ILocalDependency } from "../DependencyTypes";
+export declare function goModParser(fileContent: string, filePath: string): Promise<ILocalDependency>;
+export declare function goSumParser(fileContent: string, filePath: string): Promise<ILocalDependency>;

package/build/main/src/sdk/Dependencies/LocalDependency/parsers/golangParser.js

@@ -0,0 +1,97 @@
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.goSumParser = exports.goModParser = void 0;
+const packageurl_js_1 = require("packageurl-js");
+const path_1 = __importDefault(require("path"));
+function parseDepLink(str) {
+    var _a, _b;
+    const res = /.*?(?<ns_name>[^\s]+)\s+(?<version>(.*))/.exec(str);
+    return {
+        ns_name: (_a = res === null || res === void 0 ? void 0 : res.groups) === null || _a === void 0 ? void 0 : _a.ns_name,
+        version: (_b = res === null || res === void 0 ? void 0 : res.groups) === null || _b === void 0 ? void 0 : _b.version
+    };
+}
+function getDepDataGoModFromLine(line) {
+    const { ns_name, version } = parseDepLink(line);
+    const index = ns_name.lastIndexOf('/');
+    const namespace = ns_name.substring(0, index);
+    const name = ns_name.substring(index + 1);
+    return { namespace, name, version };
+}
+// Removes comments and spaces
+function preprocessLine(line) {
+    if (line.includes("//"))
+        line = line.substring(0, line.indexOf("//"));
+    return line.trim();
+}
+const PURL_TYPE = 'golang';
+// See reference on: https://go.dev/ref/mod#go-mod-file
+const MANIFEST_FILE = 'go.mod';
+function goModParser(fileContent, filePath) {
+    // If the file is not a go.mod manifest file, return an empty results
+    const results = { file: filePath, purls: [] };
+    if (path_1.default.basename(filePath) != MANIFEST_FILE)
+        return Promise.resolve(results);
+    const lines = fileContent.split('\n');
+    const require = [];
+    for (let num = 0; num < lines.length; num += 1) {
+        let line = preprocessLine(lines[num]);
+        if (line.includes('require') && line.includes('(')) {
+            num += 1;
+            line = preprocessLine(lines[num]);
+            while (num < lines.length && line !== ')') {
+                const { namespace, name, version } = getDepDataGoModFromLine(line);
+                const purlString = new packageurl_js_1.PackageURL(PURL_TYPE, namespace, name, version, undefined, undefined).toString();
+                results.purls.push({ purl: purlString });
+                require.push(line);
+                num += 1;
+                line = preprocessLine(lines[num]);
+            }
+        }
+    }
+    return Promise.resolve(results);
+}
+exports.goModParser = goModParser;
+function parseGoSumDepLink(str) {
+    var _a, _b, _c;
+    const res = /.*?(?<ns_name>[^\s]+)\s+(?<version>(.*))\s+h1:(?<checksum>(.*))/.exec(str);
+    return {
+        ns_name: (_a = res === null || res === void 0 ? void 0 : res.groups) === null || _a === void 0 ? void 0 : _a.ns_name,
+        version: (_b = res === null || res === void 0 ? void 0 : res.groups) === null || _b === void 0 ? void 0 : _b.version,
+        checksum: (_c = res === null || res === void 0 ? void 0 : res.groups) === null || _c === void 0 ? void 0 : _c.checksum
+    };
+}
+function getDepDataGoSumFromLine(line) {
+    const { ns_name, version } = parseGoSumDepLink(line);
+    if (!ns_name)
+        return {};
+    const index = ns_name.lastIndexOf('/');
+    const namespace = ns_name.substring(0, index);
+    const name = ns_name.substring(index + 1);
+    return { namespace, name, version };
+}
+// See reference on: https://go.dev/ref/mod#go-mod-file
+function goSumParser(fileContent, filePath) {
+    // If the file is not a go.mod manifest file, return an empty results
+    const results = { file: filePath, purls: [] };
+    if (path_1.default.basename(filePath) != 'go.sum')
+        return Promise.resolve(results);
+    const lines = fileContent.split('\n');
+    for (let num = 0; num < lines.length; num += 1) {
+        let line = preprocessLine(lines[num]); //Deletes coments
+        if (!line)
+            continue;
+        line = line.replace('/go.mod', '');
+        const { namespace, name, version } = getDepDataGoSumFromLine(line);
+        if (!name)
+            continue;
+        //const purlString = new PackageURL(PURL_TYPE, namespace, name, undefined, undefined, undefined).toString();
+        const purlString = `pkg:${PURL_TYPE}/${namespace}/${name}`;
+        results.purls.push({ purl: purlString, requirement: version });
+    }
+    return Promise.resolve(results);
+}
+exports.goSumParser = goSumParser;
+//# sourceMappingURL=data:application/json;base64,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

package/build/main/src/sdk/Dependencies/LocalDependency/parsers/mavenParser.d.ts

@@ -0,0 +1,2 @@
+import { ILocalDependency } from "../DependencyTypes";
+export declare function pomParser(fileContent: string, filePath: string): Promise<ILocalDependency>;

package/build/main/src/sdk/Dependencies/LocalDependency/parsers/mavenParser.js

@@ -0,0 +1,183 @@
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.pomParser = void 0;
+const path_1 = __importDefault(require("path"));
+const packageurl_js_1 = require("packageurl-js");
+const PURL_TYPE = 'maven';
+// Parse a pom.txt file from maven manifest file
+// See reference on: https://maven.apache.org/guides/introduction/introduction-to-the-pom.html
+// and https://maven.apache.org/guides/introduction/introduction-to-dependency-mechanism.html
+const MANIFEST_FILE = 'pom.xml';
+function pomParser(fileContent, filePath) {
+    // If the file is not a python manifest file, return an empty results
+    const results = { file: filePath, purls: [] };
+    if (path_1.default.basename(filePath) != MANIFEST_FILE)
+        return Promise.resolve(results);
+    const dependencies = fileContent.match(/<dependency>((?:.|\n)*?)<\/dependency>/gm);
+    if (dependencies) {
+        dependencies.forEach(dependency => {
+            // Extract groupId. It's the purl namespace
+            const groupId = dependency.match(/<groupId>([^<]*)<\/groupId>/);
+            const namespace = (groupId && groupId.length >= 1) ? groupId[1] : null;
+            // Extract artifact id. It's the purl name
+            const artifactId = dependency.match(/<artifactId>([^<]*)<\/artifactId>/);
+            const name = (artifactId && artifactId.length >= 1) ? artifactId[1] : null;
+            const versionReg = dependency.match(/<version>([^<]*)<\/version>/);
+            let version;
+            if (versionReg && versionReg.length >= 1)
+                version = resolve_version(versionReg[1], fileContent);
+            // Extract scope.
+            const scopeRes = dependency.match(/<scope>([^<]*)<\/scope>/);
+            const scope = (scopeRes && scopeRes.length >= 1) ? scopeRes[1] : null;
+            //Detect and extract purl qualifiers
+            const classifierRes = dependency.match(/<classifier>([^<]*)<\/classifier>/);
+            const classifier = (classifierRes && classifierRes.length >= 1) ? classifierRes[1] : null;
+            const typeRes = dependency.match(/<type>([^<]*)<\/type>/);
+            const type = (typeRes && typeRes.length >= 1) ? typeRes[1] : null;
+            let purlQualifiers;
+            if (type || classifier)
+                purlQualifiers = Object.assign(Object.assign({}, (type && { type })), (classifier && { classifier }));
+            const purlString = new packageurl_js_1.PackageURL(PURL_TYPE, namespace, name, undefined, purlQualifiers, undefined).toString();
+            results.purls.push({ purl: purlString, requirement: version, scope: scope });
+        });
+    }
+    //Remove purls duplicated
+    const nonDuplicatedResults = removeDuplicated(results);
+    return Promise.resolve(nonDuplicatedResults);
+}
+exports.pomParser = pomParser;
+function removeDuplicated(results) {
+    const map = {};
+    for (let res of results.purls) {
+        map[res.purl] = res;
+    }
+    results.purls = Object.values(map);
+    return results;
+}
+function resolve_version(dependency_version, file_content) {
+    // See properties: https://maven.apache.org/pom.html#properties
+    let version = '';
+    if (dependency_version) {
+        if (/\${project.version}/.test(dependency_version)) {
+            version = extract_content_from_tag(file_content, ['project', 'version']);
+        }
+        else if (/\${.*?}/.test(dependency_version)) {
+            const property = dependency_version.match(/\${(.*?)}/)[1];
+            const result = file_content.match(new RegExp(`<${property}>([^<]*)<\/${property}>`));
+            if (result && result.length > 0)
+                version = result[1];
+        }
+        else {
+            version = dependency_version.toString();
+        }
+    }
+    return version;
+}
+function get_start_tag_name(line) {
+    const result = line.match(/\<([\w\-\.]+).*?>/);
+    if (result)
+        return result[1].trim();
+    return '';
+}
+function get_end_tag_name(line) {
+    const result = line.match(/\<\/([\w\-\.]+) ?>/);
+    if (result)
+        return result[1].trim();
+    return '';
+}
+function get_end_tag(line) {
+    const result = get_end_tag_name(line);
+    if (result !== '')
+        return `</${result}>`;
+    return '';
+}
+function get_start_tag(line) {
+    const result = get_start_tag_name(line);
+    if (result !== '')
+        return `<${result}>`;
+    return '';
+}
+function element_match(openTag, closeTag) {
+    return get_start_tag_name(openTag) === get_end_tag_name(closeTag);
+}
+function is_element_complete(line) {
+    return get_start_tag_name(line) === get_end_tag_name(line);
+}
+function get_offset_until_end_of_tag(lines, end_tag_name) {
+    let i = 0;
+    for (const line of lines) {
+        if (get_end_tag_name(line) === end_tag_name)
+            break;
+        i += 1;
+    }
+    return i;
+}
+function remove_comments(lines) {
+    for (let i = 0; i < lines.length; i += 1) {
+        let openCommentFlag = /<!--/.test(lines[i]);
+        let endCommentFlag = /-->/.test(lines[i]);
+        if (openCommentFlag && endCommentFlag)
+            lines[i] = lines[i].replace(/<!--.*-->/, '');
+        else if (openCommentFlag) {
+            while (!/-->/.test(lines[i]) && i < lines.length) {
+                lines[i] = '';
+                i += 1;
+            }
+            lines[i] = lines[i].replace(/.*-->/, '');
+        }
+    }
+    return lines;
+}
+function extract_content_from_tag(file_content, selector) {
+    let lines = file_content.split('\n');
+    const stack = [];
+    let selectorIndex = 0;
+    let startTagName = '';
+    let endTagName = '';
+    let content = '';
+    // Sanitize xml: Removes comments
+    lines = remove_comments(lines);
+    for (let i = 0; i < lines.length; i += 1) {
+        let line = lines[i].trim();
+        if (line === '')
+            continue;
+        startTagName = get_start_tag_name(line);
+        endTagName = get_end_tag_name(line);
+        // Element complete in the same line and different than my selector
+        if (selector[selectorIndex] !== startTagName && is_element_complete(line))
+            continue;
+        // Element spans multiline and is different than my selector
+        // Loop until find corresponding end tag
+        if (selector[selectorIndex] !== startTagName) {
+            i += 1;
+            while (i < lines.length && !element_match(line, lines[i]))
+                i += 1;
+            continue;
+        }
+        // lines[i] points to the opening tag of the current selector[selectorIndex]
+        selectorIndex += 1;
+        stack.push(startTagName);
+        // Target reached
+        if (selector.length === stack.length) {
+            // Target has only one line
+            if (is_element_complete(line)) {
+                line = line.replace(get_end_tag(line), '');
+                line = line.replace(get_start_tag(line), '');
+                return line;
+            }
+            // Extracts everything beetwen opening and closing tag and return.
+            i += 1;
+            while (i < lines.length && !element_match(line, lines[i])) {
+                content += lines[i].trim();
+                i += 1;
+            }
+            return content;
+        }
+        startTagName = '';
+        endTagName = '';
+    }
+    return '';
+}
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoibWF2ZW5QYXJzZXIuanMiLCJzb3VyY2VSb290IjoiIiwic291cmNlcyI6WyIuLi8uLi8uLi8uLi8uLi8uLi8uLi9zcmMvc2RrL0RlcGVuZGVuY2llcy9Mb2NhbERlcGVuZGVuY3kvcGFyc2Vycy9tYXZlblBhcnNlci50cyJdLCJuYW1lcyI6W10sIm1hcHBpbmdzIjoiOzs7OztBQUFBLGdEQUF3QjtBQUN4QixpREFBMkM7QUFHM0MsTUFBTSxTQUFTLEdBQUcsT0FBTyxDQUFDO0FBRTFCLGdEQUFnRDtBQUNoRCw4RkFBOEY7QUFDOUYsNkZBQTZGO0FBQzdGLE1BQU0sYUFBYSxHQUFHLFNBQVMsQ0FBQztBQUNoQyxTQUFnQixTQUFTLENBQUMsV0FBbUIsRUFBRSxRQUFnQjtJQUUzRCxxRUFBcUU7SUFDckUsTUFBTSxPQUFPLEdBQXFCLEVBQUMsSUFBSSxFQUFFLFFBQVEsRUFBRSxLQUFLLEVBQUUsRUFBRSxFQUFDLENBQUM7SUFDOUQsSUFBRyxjQUFJLENBQUMsUUFBUSxDQUFDLFFBQVEsQ0FBQyxJQUFJLGFBQWE7UUFDekMsT0FBTyxPQUFPLENBQUMsT0FBTyxDQUFDLE9BQU8sQ0FBQyxDQUFDO0lBRWxDLE1BQU0sWUFBWSxHQUFHLFdBQVcsQ0FBQyxLQUFLLENBQUMsMENBQTBDLENBQUMsQ0FBQztJQUNuRixJQUFHLFlBQVksRUFBRTtRQUVmLFlBQVksQ0FBQyxPQUFPLENBQUMsVUFBVSxDQUFDLEVBQUU7WUFDaEMsMkNBQTJDO1lBQzNDLE1BQU0sT0FBTyxHQUFHLFVBQVUsQ0FBQyxLQUFLLENBQUMsNkJBQTZCLENBQUMsQ0FBQztZQUNoRSxNQUFNLFNBQVMsR0FBRyxDQUFDLE9BQU8sSUFBSSxPQUFPLENBQUMsTUFBTSxJQUFFLENBQUMsQ0FBQyxDQUFDLENBQUMsQ0FBQyxPQUFPLENBQUMsQ0FBQyxDQUFDLENBQUMsQ0FBQyxDQUFDLElBQUksQ0FBQztZQUVyRSwwQ0FBMEM7WUFDMUMsTUFBTSxVQUFVLEdBQUcsVUFBVSxDQUFDLEtBQUssQ0FBQyxtQ0FBbUMsQ0FBQyxDQUFDO1lBQ3pFLE1BQU0sSUFBSSxHQUFHLENBQUMsVUFBVSxJQUFJLFVBQVUsQ0FBQyxNQUFNLElBQUUsQ0FBQyxDQUFDLENBQUMsQ0FBQyxDQUFDLFVBQVUsQ0FBQyxDQUFDLENBQUMsQ0FBQyxDQUFDLENBQUMsSUFBSSxDQUFDO1lBRXpFLE1BQU0sVUFBVSxHQUFHLFVBQVUsQ0FBQyxLQUFLLENBQUMsNkJBQTZCLENBQUMsQ0FBQztZQUNuRSxJQUFJLE9BQU8sQ0FBQztZQUNaLElBQUcsVUFBVSxJQUFJLFVBQVUsQ0FBQyxNQUFNLElBQUUsQ0FBQztnQkFBRSxPQUFPLEdBQUcsZUFBZSxDQUFDLFVBQVUsQ0FBQyxDQUFDLENBQUMsRUFBRSxXQUFXLENBQUMsQ0FBQztZQUc3RixpQkFBaUI7WUFDakIsTUFBTSxRQUFRLEdBQUcsVUFBVSxDQUFDLEtBQUssQ0FBQyx5QkFBeUIsQ0FBQyxDQUFDO1lBQzdELE1BQU0sS0FBSyxHQUFHLENBQUMsUUFBUSxJQUFJLFFBQVEsQ0FBQyxNQUFNLElBQUUsQ0FBQyxDQUFDLENBQUMsQ0FBQyxDQUFDLFFBQVEsQ0FBQyxDQUFDLENBQUMsQ0FBQyxDQUFDLENBQUMsSUFBSSxDQUFDO1lBR3BFLG9DQUFvQztZQUNwQyxNQUFNLGFBQWEsR0FBRyxVQUFVLENBQUMsS0FBSyxDQUFDLG1DQUFtQyxDQUFDLENBQUM7WUFDNUUsTUFBTSxVQUFVLEdBQUcsQ0FBQyxhQUFhLElBQUksYUFBYSxDQUFDLE1BQU0sSUFBRSxDQUFDLENBQUMsQ0FBQyxDQUFDLENBQUMsYUFBYSxDQUFDLENBQUMsQ0FBQyxDQUFDLENBQUMsQ0FBQyxJQUFJLENBQUM7WUFFeEYsTUFBTSxPQUFPLEdBQUcsVUFBVSxDQUFDLEtBQUssQ0FBQyx1QkFBdUIsQ0FBQyxDQUFDO1lBQzFELE1BQU0sSUFBSSxHQUFHLENBQUMsT0FBTyxJQUFJLE9BQU8sQ0FBQyxNQUFNLElBQUUsQ0FBQyxDQUFDLENBQUMsQ0FBQyxDQUFDLE9BQU8sQ0FBQyxDQUFDLENBQUMsQ0FBQyxDQUFDLENBQUMsSUFBSSxDQUFDO1lBRWhFLElBQUksY0FBYyxDQUFDO1lBQ25CLElBQUksSUFBSSxJQUFJLFVBQVU7Z0JBQ3RCLGNBQWMsbUNBQ1QsQ0FBQyxJQUFJLElBQUksRUFBQyxJQUFJLEVBQUMsQ0FBQyxHQUNoQixDQUFDLFVBQVUsSUFBSSxFQUFDLFVBQVUsRUFBQyxDQUFDLENBQ2hDLENBQUM7WUFFRixNQUFNLFVBQVUsR0FBRyxJQUFJLDBCQUFVLENBQUMsU0FBUyxFQUFFLFNBQVMsRUFBRSxJQUFJLEVBQUUsU0FBUyxFQUFFLGNBQWMsRUFBRSxTQUFTLENBQUMsQ0FBQyxRQUFRLEVBQUUsQ0FBQztZQUMvRyxPQUFPLENBQUMsS0FBSyxDQUFDLElBQUksQ0FBQyxFQUFDLElBQUksRUFBRSxVQUFVLEVBQUUsV0FBVyxFQUFFLE9BQU8sRUFBRSxLQUFLLEVBQUUsS0FBSyxFQUFDLENBQUMsQ0FBQztRQUU3RSxDQUFDLENBQUMsQ0FBQztLQUNKO0lBRUQseUJBQXlCO0lBQ3pCLE1BQU0sb0JBQW9CLEdBQUcsZ0JBQWdCLENBQUMsT0FBTyxDQUFDLENBQUM7SUFDdkQsT0FBTyxPQUFPLENBQUMsT0FBTyxDQUFDLG9CQUFvQixDQUFDLENBQUM7QUFDakQsQ0FBQztBQXBERCw4QkFvREM7QUFFRCxTQUFTLGdCQUFnQixDQUFDLE9BQXlCO0lBQ2pELE1BQU0sR0FBRyxHQUFHLEVBQUUsQ0FBQztJQUNmLEtBQUssSUFBSSxHQUFHLElBQUksT0FBTyxDQUFDLEtBQUssRUFBRTtRQUM3QixHQUFHLENBQUMsR0FBRyxDQUFDLElBQUksQ0FBQyxHQUFHLEdBQUcsQ0FBQTtLQUNwQjtJQUNELE9BQU8sQ0FBQyxLQUFLLEdBQUcsTUFBTSxDQUFDLE1BQU0sQ0FBQyxHQUFHLENBQUMsQ0FBQztJQUNuQyxPQUFPLE9BQU8sQ0FBQTtBQUNoQixDQUFDO0FBRUQsU0FBUyxlQUFlLENBQUMsa0JBQTBCLEVBQUUsWUFBb0I7SUFDdkUsK0RBQStEO0lBQy9ELElBQUksT0FBTyxHQUFHLEVBQUUsQ0FBQztJQUNqQixJQUFHLGtCQUFrQixFQUFFO1FBQ3JCLElBQUcscUJBQXFCLENBQUMsSUFBSSxDQUFDLGtCQUFrQixDQUFDLEVBQUU7WUFDakQsT0FBTyxHQUFHLHdCQUF3QixDQUFDLFlBQVksRUFBRSxDQUFDLFNBQVMsRUFBRSxTQUFTLENBQUMsQ0FBQyxDQUFDO1NBQzFFO2FBQU0sSUFBRyxTQUFTLENBQUMsSUFBSSxDQUFDLGtCQUFrQixDQUFDLEVBQUU7WUFDNUMsTUFBTSxRQUFRLEdBQUcsa0JBQWtCLENBQUMsS0FBSyxDQUFDLFdBQVcsQ0FBQyxDQUFDLENBQUMsQ0FBQyxDQUFDO1lBQzFELE1BQU0sTUFBTSxHQUFHLFlBQVksQ0FBQyxLQUFLLENBQUMsSUFBSSxNQUFNLENBQUMsSUFBSSxRQUFRLGNBQWMsUUFBUSxHQUFHLENBQUMsQ0FBQyxDQUFDO1lBQ3JGLElBQUksTUFBTSxJQUFJLE1BQU0sQ0FBQyxNQUFNLEdBQUMsQ0FBQztnQkFBRSxPQUFPLEdBQUcsTUFBTSxDQUFDLENBQUMsQ0FBQyxDQUFDO1NBQ3BEO2FBQU07WUFDTCxPQUFPLEdBQUcsa0JBQWtCLENBQUMsUUFBUSxFQUFFLENBQUM7U0FDekM7S0FDRjtJQUNELE9BQU8sT0FBTyxDQUFDO0FBQ2pCLENBQUM7QUFHRCxTQUFTLGtCQUFrQixDQUFDLElBQVk7SUFDdEMsTUFBTSxNQUFNLEdBQUcsSUFBSSxDQUFDLEtBQUssQ0FBQyxtQkFBbUIsQ0FBQyxDQUFDO0lBQy9DLElBQUksTUFBTTtRQUFFLE9BQU8sTUFBTSxDQUFDLENBQUMsQ0FBQyxDQUFDLElBQUksRUFBRSxDQUFDO0lBQ3BDLE9BQU8sRUFBRSxDQUFDO0FBQ1osQ0FBQztBQUVELFNBQVMsZ0JBQWdCLENBQUMsSUFBWTtJQUNwQyxNQUFNLE1BQU0sR0FBRyxJQUFJLENBQUMsS0FBSyxDQUFDLG9CQUFvQixDQUFDLENBQUM7SUFDaEQsSUFBSSxNQUFNO1FBQUUsT0FBTyxNQUFNLENBQUMsQ0FBQyxDQUFDLENBQUMsSUFBSSxFQUFFLENBQUM7SUFDcEMsT0FBTyxFQUFFLENBQUM7QUFDWixDQUFDO0FBRUQsU0FBUyxXQUFXLENBQUMsSUFBWTtJQUMvQixNQUFNLE1BQU0sR0FBRyxnQkFBZ0IsQ0FBQyxJQUFJLENBQUMsQ0FBQztJQUN0QyxJQUFJLE1BQU0sS0FBSyxFQUFFO1FBQUUsT0FBTyxLQUFLLE1BQU0sR0FBRyxDQUFBO0lBQ3hDLE9BQU8sRUFBRSxDQUFDO0FBQ1osQ0FBQztBQUVELFNBQVMsYUFBYSxDQUFDLElBQVk7SUFDakMsTUFBTSxNQUFNLEdBQUcsa0JBQWtCLENBQUMsSUFBSSxDQUFDLENBQUM7SUFDeEMsSUFBSSxNQUFNLEtBQUssRUFBRTtRQUFFLE9BQU8sSUFBSSxNQUFNLEdBQUcsQ0FBQTtJQUN2QyxPQUFPLEVBQUUsQ0FBQztBQUNaLENBQUM7QUFFRCxTQUFTLGFBQWEsQ0FBQyxPQUFlLEVBQUUsUUFBZTtJQUNyRCxPQUFPLGtCQUFrQixDQUFDLE9BQU8sQ0FBQyxLQUFLLGdCQUFnQixDQUFDLFFBQVEsQ0FBQyxDQUFDO0FBQ3BFLENBQUM7QUFFRCxTQUFTLG1CQUFtQixDQUFDLElBQVk7SUFDdkMsT0FBTyxrQkFBa0IsQ0FBQyxJQUFJLENBQUMsS0FBSyxnQkFBZ0IsQ0FBQyxJQUFJLENBQUMsQ0FBQztBQUM3RCxDQUFDO0FBR0QsU0FBUywyQkFBMkIsQ0FBQyxLQUFvQixFQUFFLFlBQW9CO0lBQzdFLElBQUksQ0FBQyxHQUFHLENBQUMsQ0FBQztJQUNWLEtBQUssTUFBTSxJQUFJLElBQUksS0FBSyxFQUFFO1FBQ3RCLElBQUssZ0JBQWdCLENBQUMsSUFBSSxDQUFDLEtBQUssWUFBWTtZQUFFLE1BQU07UUFDcEQsQ0FBQyxJQUFJLENBQUMsQ0FBQztLQUNWO0lBQ0QsT0FBTyxDQUFDLENBQUM7QUFDWCxDQUFDO0FBRUQsU0FBUyxlQUFlLENBQUMsS0FBb0I7SUFDM0MsS0FBSyxJQUFJLENBQUMsR0FBQyxDQUFDLEVBQUUsQ0FBQyxHQUFDLEtBQUssQ0FBQyxNQUFNLEVBQUUsQ0FBQyxJQUFFLENBQUMsRUFBRTtRQUNoQyxJQUFJLGVBQWUsR0FBRyxNQUFNLENBQUMsSUFBSSxDQUFDLEtBQUssQ0FBQyxDQUFDLENBQUMsQ0FBQyxDQUFDO1FBQzVDLElBQUksY0FBYyxHQUFHLEtBQUssQ0FBQyxJQUFJLENBQUMsS0FBSyxDQUFDLENBQUMsQ0FBQyxDQUFDLENBQUM7UUFFMUMsSUFBRyxlQUFlLElBQUksY0FBYztZQUNoQyxLQUFLLENBQUMsQ0FBQyxDQUFDLEdBQUcsS0FBSyxDQUFDLENBQUMsQ0FBQyxDQUFDLE9BQU8sQ0FBQyxXQUFXLEVBQUUsRUFBRSxDQUFDLENBQUM7YUFDNUMsSUFBSSxlQUFlLEVBQUM7WUFDckIsT0FBTSxDQUFDLEtBQUssQ0FBQyxJQUFJLENBQUMsS0FBSyxDQUFDLENBQUMsQ0FBQyxDQUFDLElBQUksQ0FBQyxHQUFDLEtBQUssQ0FBQyxNQUFNLEVBQUU7Z0JBQzNDLEtBQUssQ0FBQyxDQUFDLENBQUMsR0FBRyxFQUFFLENBQUM7Z0JBQ2QsQ0FBQyxJQUFJLENBQUMsQ0FBQzthQUNWO1lBQ0QsS0FBSyxDQUFDLENBQUMsQ0FBQyxHQUFHLEtBQUssQ0FBQyxDQUFDLENBQUMsQ0FBQyxPQUFPLENBQUMsT0FBTyxFQUFFLEVBQUUsQ0FBQyxDQUFDO1NBQzVDO0tBRUo7SUFDRCxPQUFPLEtBQUssQ0FBQztBQUNmLENBQUM7QUFHRCxTQUFTLHdCQUF3QixDQUFDLFlBQW9CLEVBQUUsUUFBdUI7SUFDN0UsSUFBSSxLQUFLLEdBQUcsWUFBWSxDQUFDLEtBQUssQ0FBQyxJQUFJLENBQUMsQ0FBQztJQUNyQyxNQUFNLEtBQUssR0FBa0IsRUFBRSxDQUFDO0lBRWhDLElBQUksYUFBYSxHQUFHLENBQUMsQ0FBQztJQUN0QixJQUFJLFlBQVksR0FBRyxFQUFFLENBQUM7SUFDdEIsSUFBSSxVQUFVLEdBQUcsRUFBRSxDQUFDO0lBQ3BCLElBQUksT0FBTyxHQUFHLEVBQUUsQ0FBQztJQUVqQixpQ0FBaUM7SUFDakMsS0FBSyxHQUFHLGVBQWUsQ0FBQyxLQUFLLENBQUMsQ0FBQztJQUUvQixLQUFLLElBQUksQ0FBQyxHQUFDLENBQUMsRUFBRSxDQUFDLEdBQUMsS0FBSyxDQUFDLE1BQU0sRUFBRSxDQUFDLElBQUUsQ0FBQyxFQUFFO1FBQ2xDLElBQUksSUFBSSxHQUFHLEtBQUssQ0FBQyxDQUFDLENBQUMsQ0FBQyxJQUFJLEVBQUUsQ0FBQztRQUMzQixJQUFHLElBQUksS0FBSyxFQUFFO1lBQUUsU0FBUztRQUV6QixZQUFZLEdBQUcsa0JBQWtCLENBQUMsSUFBSSxDQUFDLENBQUM7UUFDeEMsVUFBVSxHQUFHLGdCQUFnQixDQUFDLElBQUksQ0FBQyxDQUFDO1FBRXBDLG1FQUFtRTtRQUNuRSxJQUFHLFFBQVEsQ0FBQyxhQUFhLENBQUMsS0FBSyxZQUFZLElBQUksbUJBQW1CLENBQUMsSUFBSSxDQUFDO1lBQUUsU0FBUztRQUVuRiw0REFBNEQ7UUFDNUQsd0NBQXdDO1FBQ3hDLElBQUksUUFBUSxDQUFDLGFBQWEsQ0FBQyxLQUFLLFlBQVksRUFBRTtZQUMzQyxDQUFDLElBQUksQ0FBQyxDQUFDO1lBQ1AsT0FBTyxDQUFDLEdBQUMsS0FBSyxDQUFDLE1BQU0sSUFBSSxDQUFDLGFBQWEsQ0FBQyxJQUFJLEVBQUUsS0FBSyxDQUFDLENBQUMsQ0FBQyxDQUFDO2dCQUFFLENBQUMsSUFBRSxDQUFDLENBQUM7WUFDOUQsU0FBUztTQUNYO1FBRUQsNEVBQTRFO1FBQzVFLGFBQWEsSUFBSSxDQUFDLENBQUM7UUFDbkIsS0FBSyxDQUFDLElBQUksQ0FBQyxZQUFZLENBQUMsQ0FBQztRQUV6QixpQkFBaUI7UUFDakIsSUFBRyxRQUFRLENBQUMsTUFBTSxLQUFLLEtBQUssQ0FBQyxNQUFNLEVBQUU7WUFDbkMsMkJBQTJCO1lBQzNCLElBQUksbUJBQW1CLENBQUMsSUFBSSxDQUFDLEVBQUU7Z0JBQzNCLElBQUksR0FBRyxJQUFJLENBQUMsT0FBTyxDQUFDLFdBQVcsQ0FBQyxJQUFJLENBQUMsRUFBRSxFQUFFLENBQUMsQ0FBQztnQkFDM0MsSUFBSSxHQUFHLElBQUksQ0FBQyxPQUFPLENBQUMsYUFBYSxDQUFDLElBQUksQ0FBQyxFQUFFLEVBQUUsQ0FBQyxDQUFDO2dCQUM3QyxPQUFPLElBQUksQ0FBQzthQUNmO1lBRUMsa0VBQWtFO1lBQ2xFLENBQUMsSUFBSSxDQUFDLENBQUM7WUFDUCxPQUFPLENBQUMsR0FBQyxLQUFLLENBQUMsTUFBTSxJQUFJLENBQUMsYUFBYSxDQUFDLElBQUksRUFBRSxLQUFLLENBQUMsQ0FBQyxDQUFDLENBQUMsRUFBRztnQkFDeEQsT0FBTyxJQUFJLEtBQUssQ0FBQyxDQUFDLENBQUMsQ0FBQyxJQUFJLEVBQUUsQ0FBQztnQkFDM0IsQ0FBQyxJQUFJLENBQUMsQ0FBQzthQUNSO1lBQ0QsT0FBTyxPQUFPLENBQUM7U0FDbEI7UUFDRCxZQUFZLEdBQUMsRUFBRSxDQUFDO1FBQ2hCLFVBQVUsR0FBQyxFQUFFLENBQUM7S0FDZjtJQUNELE9BQU8sRUFBRSxDQUFDO0FBQ1osQ0FBQyJ9

package/build/main/src/sdk/Dependencies/LocalDependency/parsers/npmParser.d.ts

@@ -0,0 +1,13 @@
+import { ILocalDependency } from "../DependencyTypes";
+export declare function packageParser(fileContent: string, filePath: string): Promise<ILocalDependency>;
+export declare function packagelockParser(fileContent: string, filePath: string): Promise<ILocalDependency>;
+export declare function yarnLockParser(fileContent: string, filePath: string): Promise<ILocalDependency>;
+declare enum YarnLockVersionEnum {
+    "V1" = 0,
+    "V2" = 1,
+    UnknownYarnLockFormat = 2
+}
+export declare function yarnLockRecognizeVersion(fileContent: string): YarnLockVersionEnum;
+export declare function yarnLockV1Parser(fileContent: string, filePath: string): Promise<ILocalDependency>;
+export declare function yarnLockV2Parser(fileContent: string, filePath: string): Promise<ILocalDependency>;
+export {};